0.36.1

What's Changed

🐞 Bug Fixes

• 1f969fe authorization: Fix searching users by hierarchy entity

✅ Tests

• 915c5f4 authorization: Use KeycloakTestClient instead of mocks in test
• 1af290a keycloak-client: Add a test for searchGroups

🐘 Build & ⚙️ CI

• de7171d gradle: Remove unneeded dependencies on Jackson
• 81d1edc gradle: Remove unused Jackson version catalog entries

🚀 Dependency Updates

• 598d5d5 update com.squareup.okio:okio to v3.16.2
• c4d6ecf update dependency eslint-plugin-react-refresh to v0.4.24
• b9ce4bf update dependency prettier-plugin-tailwindcss to ^0.7.0
• 8937234 update dependency vite to v7.1.10
• eae0169 update flyway to v11.14.1
• 3b40ce2 update kotest to v6.0.4
• accb6c3 update org.ossreviewtoolkit:version-catalog to v70.1.0
• 34ba79e update org.testcontainers:testcontainers to v2
• a0ef262 update quay.io/keycloak/keycloak docker tag to v26.4.1

🚜 Refactorings

• 3d6f4fc authorization: Rename the component
• 68baaa7 common: Assert a more generic exception in a test
• 6335403 Avoid using yamlMapper directly
• b6f85e7 Migrate away from deprecated test containers

0.36.0

What's Changed

🛠 Breaking Changes

• 24f3fad refactor(api)!: Refactor infrastructure services component
• ec3bbc3 refactor(api)!: Refactor secret deletion in compositions
• 7b18285 refactor(api)!: Refactor secrets component

🐞 Bug Fixes

• 33f5546 analyzer: Actually make use of HASKELL_STACK_VERSION
• 36d101b ui: Defer a state update inside useEffect
• 5798a82 ui: Fix eslint errors

🎉 New Features

• c988bd9 auth-service: Add a function to query the roles of a user
• 82bd1ed scanner: Install the Askalono scanner
• a773e5a scanner: Install the Licensee scanner
• cfedb42 ui: Capitalize all words in titles and labels
• 5646d97 ui: Show labels and source code origins in package curations
• 280fd83 ui: Show labels and source code origins in package data
• b1b94ee ui: Use HINT color for CURATED badge
• b565213 Extend curation data with labels and source code origins
• 364562e Extend package data with labels and source code origins

✅ Tests

• d4c1b22 authorization: Reduce code duplication
• 5747b39 authorization: Use KeycloakTestClient consistently
• fe3ada5 keycloak-client: Fix getting roles recursively
• 3d7d60c keycloak-client: Handle user client roles correctly

🐘 Build & ⚙️ CI

• 8af04bf ui: Ignore linting warnings from useReactTable() hook
• a112eaf ui: Update eslint-plugin-react-hooks to v7 manually
• 23196ce ui: Upgrade to eslint 9
• e35d3e8 ui: Use the recommended-legacy

📖 Documentation

• eb1c289 cli: Fix dead links to API documentation
• 888794a contributing: Remove incorrect warning about breaking changes
• 40fb96d Fix dead link to Docker Compose documentation

🔧 Chores

• df464b9 analyzer: Always list a stage's ARGs directly after FROM
• fab81ef analyzer: Do not explicitly install the Bundler tool anymore
• 8c14880 cli: Use Clikt's default function for log level
• ad2a85e compose: Allow logging driver to be disabled
• 96b2678 dev: Change CLI run configuration type to Kotlin
• f7e3c6b dev: Move remote run configurations into Remote/ directory
• 2c7b208 docker: Remove a superfluous condition
• f049d0b Fix "Run ORT Server" run configuration
• 71651a8 Sort environment variables

🚀 Dependency Updates

• 06fa077 update actions/setup-node action to v6
• 3f78a2c update awssdk to v1.5.59
• df6f3d6 update com.azure:azure-identity to v1.18.1
• 121cf0e update com.squareup.okio:okio to v3.16.1
• e5df20d update dependency @hey-api/openapi-ts to v0.85.2
• 11afc36 update dependency @types/node to v22.18.10
• 8eb2984 update dependency @types/node to v22.18.9
• fdda8ad update dependency @types/react-dom to v19.2.2
• 3b1cbfd update dependency lucide-react to ^0.545.0
• 226a67d update dependency react-hook-form to v7.65.0
• ebed943 update io.micrometer:micrometer-registry-graphite to v1.15.5
• c6806f7 update nginx:1.29-alpine docker digest to 61e0128
• dea8544 update nginx:1.29-alpine docker digest to 7c1b9a9
• 42373cc update org.flywaydb:flyway-core to v11.14.0
• 47ee213 update org.ossreviewtoolkit:version-catalog to v70.0.1
• d258d2d update react monorepo
• 98d5fe8 update tanstack-router monorepo
• 2903b5e update typescript-eslint monorepo to v8.46.1

🚜 Refactorings

• 62ef05f authorization: Query user roles from the service
• 3ca0228 services: Move authorization service to component

0.35.0

What's Changed

🐞 Bug Fixes

• d58d6cd evaluator: Persist resolved resolutions after evaluator run
• 71088b7 ui: Always show the most current payload
• c918dbc ui: Revert the logic of rendering "inert" cards
• a87e47d ui: Show deduplication option correctly for WebApp

🎉 New Features

• c76c13d api: Align request objects in admin route
• 8ea866f api: Align request objects in organizations route
• 6030fb5 api: Align request objects in products route
• 2c80a80 api: Align request objects in repositories route
• f281ddf api: Change operation ID from plural to singular
• e7b8d53 ui: Add a component for changing the app theme
• 0593af2 ui: Add two new themes to the UI
• a591248 ui: Indicate the currently selected mode in component
• d59873b ui: Modernize globals.css and fix using CSS variables in charts

✅ Tests

• cef2c5f infrastructure-service: Convert test into integration test
• f309d6d infrastructure-service: Inline the TestHelper

🐘 Build & ⚙️ CI

• cf2bf3a gradle: Remove enforcing the OkHttp version
• be80c69 github: Use full action version numbers in comments
• 9cbae33 github: Use the reuse-action instead of calling lint manually

📖 Documentation

• d0017e6 Fix link to docker compose documentation

🚀 Dependency Updates

• 1e03b07 analyzer: Upgrade python-inspector to 0.14.4
• 3a8cf6b update com.autonomousapps:dependency-analysis-gradle-plugin to v3.1.0
• da3ecfa update com.charleskorn.kaml:kaml to v0.98.0
• 7b67ccd update com.github.gmazzo.buildconfig to v5.7.0
• 21df1ec update com.google.devtools.ksp to v2.2.20-2.0.4
• b38e492 update dependency @hey-api/openapi-ts to v0.85.1
• 24c95b8 update flyway to v11.13.3
• 4eadf16 update io.ktor:ktor-version-catalog to v3.3.1
• e8300ac update nginx:1.29-alpine docker digest to 4e6b072
• 5cfde30 update nginx:1.29-alpine docker digest to 52175fc
• b6e93df update nginx:1.29-alpine docker digest to 56c93b2
• 005cfaf update pnpm/action-setup action to v4.2.0
• 3b4e269 update pnpm/action-setup digest to 41ff726

🚜 Refactorings

• 9e31231 infrastructure-services: Inline repositories into service
• 31bbb88 infrastructure-services: Make repositories internal
• 8ea2110 secrets-routes: Use service instead of repository
• 800de3b ui: Extend the theme provider
• 08e5034 ui: Rename Theme to Mode
• 4518df2 ui: Simplify the theme provider
• b227054 workers: Use services instead of repositories
• 424afe9 Move InfrastructureServiceService to the component
• c8beb6a Move database classes to infrastructures-services component
• 2c26f58 Move repository interfaces to infrastructure-services

0.34.0

What's Changed

🐞 Bug Fixes

• 4970177 workers: Create remotes.json for both Conan versions

🎉 New Features

• 5ba77a1 api: Change endpoint naming in admin route
• a479d25 api: Change endpoint naming in downloads route
• 2390e28 api: Change endpoint naming in organizations route
• 7b1cbcc api: Change endpoint naming in products route
• 97c640e api: Change endpoint naming in repositories route
• b150d2d api: Change endpoint naming in runs route
• a35c40c ui: Add cursor-pointer to buttons globally
• 76494ef ui: Add missing hover color
• 7394436 ui: Refactor organization vulnerabilities table
• ae02ff7 ui: Refactor product vulnerabilities table
• 38c7810 ui: Remove explicit cursor-pointer where not needed
• 3937c38 ui: Remove hover color from non-functional statistics cards
• 338e10a workers: Apply resolutions to worker job status

🚀 Dependency Updates

• bb3b6e2 update awssdk to v1.5.54
• d3bcd17 update dependency @hey-api/openapi-ts to v0.85.0
• 78d36bf update dependency react-hook-form to v7.64.0
• 5db33bc update dependency vite to v7.1.9
• 9d7a000 update dependency zod to v4.1.12
• 6274c5b update node.js to d943bf2
• 81de29b update org.ossreviewtoolkit:version-catalog to v69.1.0
• 94d7dc4 update org.ossreviewtoolkit:version-catalog to v70
• 981d988 update tanstack-router monorepo to v1.132.41
• ac8f397 update typescript-eslint monorepo to v8.46.0

🚜 Refactorings

• 8413bad ui: Change column ID for repositories count

0.33.0

What's Changed

🐞 Bug Fixes

• fc82dad ui: Make the columns respect the size prop

🎉 New Features

• 145bd16 cli: Make waiting for a run more robust
• 2444cac ui: Change issues table into a card layout
• 3ed9a88 ui: Change projects table to a card layout
• 5f5e344 ui: Change rule violations table into a card layout
• 65ec806 ui: Change vulnerabilities table into a card layout
• 0f16223 ui: Parametrize action column size
• 59ae083 ui: Tweak products and repositories tables
• 3a5dfd6 ui: Unify packages table with the projects table

✅ Tests

• bc7c48a cli: Speed up execution of StartCommandTest

🚀 Dependency Updates

• ae2e9d1 docker: Upgrade to latest Rust 1.90 for Cargo >= 1.85
• 6583b3f update ch.qos.logback:logback-classic to v1.5.19
• 9713dea update com.github.dasniko:testcontainers-keycloak to v3.9.0
• 91fbc20 update dependency @hey-api/openapi-ts to v0.84.4
• 399672d update dependency @types/node to v22.18.8
• fd2cfc9 update dependency @types/react-dom to v19.1.11
• 9847368 update dependency eslint-plugin-react-hooks to v6
• 426a6be update dependency eslint-plugin-react-refresh to v0.4.23
• 4f73b6d update dependency typescript to v5.9.3
• 9fa424e update dependency vite to v7.1.8
• 265e439 update docker/dockerfile docker tag to v1.19
• 600abf4 update gradle/actions action to v5
• 865df33 update io.mockk:mockk to v1.14.6
• 150fb2e update quay.io/keycloak/keycloak docker tag to v26.4.0
• ff8d765 update react monorepo to v19.1.17
• 936fed3 update react monorepo to v19.2.0
• 0c30f35 update tailwindcss monorepo to v4.1.14

0.32.0

What's Changed

🎉 New Features

• 9aee1e7 core: Extend the Keycloak configuration by a timeout
• 49dd22c keycloak: Make timeouts configurable
• 8ea3090 ui: Add a badge variant
• 8680a43 ui: Add a method to reset the whole sorting state
• 79a3e00 ui: Add components for a card table
• 4d01b06 ui: Add filter for external ID for organization vulnerabilities
• 8690f90 ui: Add filter for package ID for organization vulnerabilities
• 8431ce9 ui: Add optional title next to all filter components
• 06fe709 ui: Add rating filter for organization vulnerabilities
• dac56e8 ui: Add text filter for external ID for product vulnerabilities
• 1e57b9a ui: Change packages table to card layout

🔧 Chores

• 1f122d4 ui: Ignore AI Agent specific files and directories
• dd62485 ui: Remove unused sorting function

🚀 Dependency Updates

• 26b8145 update awssdk to v1.5.49
• 0f57aa8 update azure-sdk-for-java monorepo
• 7caf698 update com.azure:azure-security-keyvault-secrets to v4.10.3
• fec5c50 update dependency @types/node to v22.18.7
• faf238f update dependency @types/react to v19.1.14
• b7de4c7 update dependency @types/react to v19.1.15
• a36d120 update dependency @types/react to v19.1.16
• 59d3a24 update dependency @vitejs/plugin-react to v5.0.4
• 0a0ed5d update docker/login-action digest to 5e57cd1
• 7802d06 update docusaurus monorepo to v3.9.1
• 1bc0724 update flyway to v11.13.2
• 6d87171 update gradle/actions digest to 748248d
• 08ffdfc update node.js to c407baf
• b7e116d update tanstack-query monorepo to v5.90.2
• 61dd294 update tanstack-router monorepo
• bf46359 update typescript-eslint monorepo to v8.45.0

🚜 Refactorings

• d4688a0 ui: Memoize page index and size
• 154b926 ui: Use server-side data manipulation for product vulnerabilities

0.31.0

What's Changed

🐞 Bug Fixes

• 33b81ed dao: Add a missing ON DELETE CASCADE constraint
• 550785e services: Add missing offset to query
• 2df76bc ui: Allow also general strings as repository types
• 51a818b ui: Fix issue categorization
• 07f31a0 ui: Fix table overflow
• b23acb8 ui: Redirect specifically to a correct page after run creation

🎉 New Features

• 500c007 client: Support retries for timed out requests
• ee97ca1 core: Allow filtering for product and organization vulnerabilities
• 5b607d7 services: Allow filtering vulnerabilities for multiple runs
• d80f474 ui: Define a regular expression filter component
• a4f3d88 ui: Don't show empty repository / artifact information
• e57932f ui: Use the regular expression filter
• e187c25 workers: Apply resolutions to job status evaluation

📖 Documentation

• 0af4981 website: Move secrets provider docs to website
• 990e105 Fix links in readme files

🔧 Chores

• 378c3a9 core: Move function to utils
• 57d2d16 dao: Capitalize the "Scanner" issue source
• 8f7b45c ui: Add a "dummy" RegEx also for the 'Other' issue category
• 6735e02 Prefer the Char-version of split()

🚀 Dependency Updates

• 7017c51 update actions/cache digest to 0057852
• 113c002 update com.charleskorn.kaml:kaml to v0.97.0
• a406798 update dependency @hey-api/openapi-ts to v0.84.2
• 74b5252 update dependency @hey-api/openapi-ts to v0.84.3
• 893f244 update dependency @tailwindcss/typography to v0.5.19
• 5b91fe7 update dependency eslint-plugin-react-refresh to v0.4.22
• c8cecee update dependency tw-animate-css to v1.4.0
• 7f766ac update docusaurus monorepo to v3.9.0
• 1f3045f update org.ossreviewtoolkit:version-catalog to v69
• 4e4303c update postgres docker tag to v18
• 120b7bb update quay.io/keycloak/keycloak docker tag to v26.3.5

🚜 Refactorings

• 2aa9c1c ui: Remove grouping support from the data table components

0.30.0

What's Changed

🐞 Bug Fixes

• 4ea117f core: Add missing filters to API docs
• 6a11301 plugin-manager: Reset the deleted flag when creating a template
• 5c54a59 ui: Don't render empty objects
• d294f09 ui: Render all property values with a muted font
• 31a647f ui: Use div instead of fragment
• fbe7df3 ui: Use runtime API URLs instead of build-time placeholders

🎉 New Features

• 5d8b810 services: Allow sorting vulnerabilities for runs by purl
• bf3ae69 ui: Add filter for organization name
• 4de7088 ui: Add filter for product name
• 9f592d2 ui: Add filter for repository name (URL)
• 5c558af ui: Add validation schema for the name filter
• c3d0942 ui: Clean up the Configuration page
• 16874fb ui: Show binary flags for packages
• 256970c Return purl for product and organization vulnerabilities

🐘 Build & ⚙️ CI

• 11121ad ui: Add Axios library
• bfc6595 ui: Add Zod plugin to hey-api configuration
• 34f7997 ui: Add an Axios plugin to hey-api
• db9c8ab ui: Switch from ES2020 to ES2022

📖 Documentation

• f36d01a website: Add guide for configuring environment variables

🚀 Dependency Updates

• bc7f67b update awssdk to v1.5.43
• 06e3a4b update com.autonomousapps:dependency-analysis-gradle-plugin to v3.0.4
• ff052a7 update com.azure:azure-identity to v1.18.0
• a9ce63b update dependency @hey-api/openapi-ts to v0.84.0
• 5c60682 update dependency @hey-api/openapi-ts to v0.84.1
• cd0773a update dependency @tailwindcss/typography to v0.5.17
• f756ba8 update dependency @tailwindcss/typography to v0.5.18
• b80338e update dependency @types/node to v22.18.5
• dc409f2 update dependency @types/node to v22.18.6
• a85f639 update dependency @vitejs/plugin-react to v5.0.3
• aecd17e update dependency ae-cvss-calculator to v1.0.9
• 2b7db3a update dependency eslint-plugin-react-refresh to v0.4.21
• cf19ca7 update dependency react-hook-form to v7.63.0
• 9569694 update dependency typescript to v5.9.2
• f58ce1a update dependency vite to v7.1.6
• cf8f203 update dependency vite to v7.1.7
• d72ab03 update dependency zod to v4.1.11
• 40f2ab4 update dependency zod to v4.1.9
• 0c59538 update flyway to v11.13.0
• bd7dc5d update flyway to v11.13.1
• 43dd7cd update gradle to v9.1.0
• fd00ebf update ktoropenapi to v5.3.0
• 3433a3a update org.apache.logging.log4j:log4j-to-slf4j to v2.25.2
• 6ce6238 update org.apache.qpid:qpid-jms-client to v2.9.0
• 271d3b1 update org.ossreviewtoolkit:version-catalog to v68.2.0
• 3dda865 update org.postgresql:postgresql to v42.7.8
• 4a2a3c2 update schemakenerator to v2.4.0
• 69c76ce update tanstack-query monorepo to v5.89.0
• 07e97a4 update tanstack-router monorepo to v1.131.50
• cff8c8e update typescript-eslint monorepo to v8.44.1

🚜 Refactorings

• 9ce5d0d ui: Align column definitions for the tables
• 3d3db5f ui: Finish refactoring of local components
• 40bfe82 ui: Generalize ApiError
• e219865 ui: Move the query client back from /hey-api to /api
• 5512a76 ui: Refactor ORT run creation
• a0392b3 ui: Refactor admin/plugins handling
• 57b56af ui: Refactor all general components
• 1811de5 ui: Refactor all helpers
• 4a6e8da ui: Refactor some schemas
• cafb740 ui: Refactor the "go to run ID" route
• fe72abd ui: Refactor the organization products table
• c536558 ui: Refactor the product repositories table
• c2b6326 ui: Remove the dependency to OpenAPI
• 53c5b34 ui: Remove the old query client and retain error handling
• 950377b ui: Remove the unneeded "hand-written" validation schemas
• 95f921f ui: Use auto-generated Zod schema for ORT run status
• 368e79e ui: Use auto-generated Zod schema for repository type
• 704f8fc ui: Use auto-generated Zod schema for severity
• f84aade ui: Use auto-generated Zod schema for vulnerability rating
• 6005e92 ui: Use purl from response

0.29.0

What's Changed

🐞 Bug Fixes

• d3981cb ui: Add a missing prop
• cda045e ui: Close the text filter properly

🎉 New Features

• 36dc08c ui: Add a component for rendering a curation
• 5765d16 ui: Add a component to handle rendering of properties
• 836b85e ui: Extend the RenderProperty component
• c70c930 ui: Make enter or blur commit the text filter in tables
• 105f31d ui: Show the package curations
• cf5746c ui: Use the extended RenderProperty to clean up code
• 14c5f17 Implement filtering functionality across repositories

📖 Documentation

• 2b63935 CONTRIBUTING: Move the note about using Amercian English
• eab11d1 CONTRIBUTING: Note that the project language is American English
• d8cfacc CONTRIBUTING: Only say "general(ly)" once

🚀 Dependency Updates

• aeee46f update awssdk to v1.5.38
• 2b6678b update com.autonomousapps:dependency-analysis-gradle-plugin to v3.0.2
• 28c5213 update com.autonomousapps:dependency-analysis-gradle-plugin to v3.0.3
• dad1066 update com.charleskorn.kaml:kaml to v0.96.0
• aec68a9 update com.google.devtools.ksp to v2.2.20-2.0.3
• c671017 update com.networknt:json-schema-validator to v1.5.9
• 24b9c34 update com.typesafe:config to v1.4.5
• aafe144 update dependency @hookform/resolvers to v5.2.2
• 0fe4483 update dependency @iconify/react to v6.0.2
• f4a06da update dependency @types/node to v22.18.3
• e3675f6 update dependency @types/node to v22.18.4
• 44d53d7 update dependency @types/react to v19.1.13
• 947fcdf update dependency lucide-react to ^0.544.0
• 4e0a4c0 update dependency recharts to v3.2.1
• f9a70a8 update dependency zod to v4.1.7
• dea6e09 update dependency zod to v4.1.8
• 5c220ad update io.ktor:ktor-version-catalog to v3.3.0
• c0cc0f1 update node.js to 4a4884e
• 7e9c33c update org.ossreviewtoolkit:version-catalog to v68.1.0
• 38e37c4 update quay.io/keycloak/keycloak docker tag to v26.3.4
• d1ca5b8 update tanstack-query monorepo to v5.87.4
• de4ef70 update tanstack-router monorepo
• a035e92 update typescript-eslint monorepo to v8.44.0

🚜 Refactorings

• fa246bb s3: Use headObject request for contains
• aa17aa0 services: Don't load file lists for result on IssueService
• 20bd9ba ui: Refactor ORT run creation
• d181ecc ui: Refactor Siblings component
• 487359b ui: Refactor config page and components
• 83bdc19 ui: Refactor file downloading pages
• 35b255b ui: Refactor item tables
• 3217b09 ui: Refactor repositories/$repositoryId route and index page
• 29c0d2f ui: Refactor repository infrastructure services handling
• 8cb93e6 ui: Refactor repository secrets handling
• 655e276 ui: Refactor repository settings
• 470bc2e ui: Refactor repository users handling
• 8881f8c ui: Refactor runs/$runIndex route and index page
• e69e991 ui: Refactor the repository runs table
• fefb6fb ui: Refactor the run details components
• f4abfdd Move infrastructure service routes to a new component

0.28.2

What's Changed

🐞 Bug Fixes

• f8a9712 docker: Change access rights for the $CARGO_HOME directory

📖 Documentation

• 1ab24a2 secret-service: Fix docs for createSecret

🚀 Dependency Updates

• 0d2349f update com.charleskorn.kaml:kaml to v0.95.0
• c939961 update com.google.devtools.ksp to v2.2.20-2.0.2
• d6d50ad update dependency @hey-api/openapi-ts to v0.83.0
• 5cc2967 update dependency @hey-api/openapi-ts to v0.83.1
• 4f25257 update dependency zod to v4.1.6
• 9a87e9f update org.jetbrains.kotlin:kotlin-gradle-plugin to v2.2.20

🚜 Refactorings

• 5fe18b4 model: Replace entities in Secret with their IDs
• fc2bd5f secret-service: Remove dependency on infrastructure services
• 8e00c10 secret-service: Shorten function names
• d4fd261 secrets: Move SecretService to secrets component
• 58b8370 secrets: Move delete routes to composition module
• 2773e73 Use secret service instead of repository